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-- The MAILING DATE of this communication appears on the cover sheet with the correspondence address- 
All claims being allowable, PROSECUTION ON THE MERITS IS (OR REMAINS) CLOSED in this application. If not included 
herewith (or previously mailed), a Notice of Allowance (PTOL-85) or other appropriate communication will be mailed in due course. THIS 
NOTICE OF ALLOWABILITY IS NOT A GRANT OF PATENT RIGHTS. This application is subject to withdrawal from issue at the initiative 
of the Office or upon petition by the applicant. See 37 CFR 1.313 and MPEP 1308. 

1 . ^ This communication is responsive to interview on 2/22/2007 . 

2. [3 The allowed claim(s) is/are 1-7.9.10.12-21 and 23 . 

3. □ Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 1 19(a)-(d) or (f). 

a) □ All b)DSome* c) □ None of the: 

1. □ Certified copies of the priority documents have been received. 

2. □ Certified copies of the priority documents have been received in Application No. . 

3. □ Copies of the certified copies of the priority documents have been received in this national stage application from the 

International Bureau (PCT Rule 17.2(a)). 
* Certified copies not received: . 

Applicant has THREE MONTHS FROM THE M MAILING DATE" of this communication to file a reply complying with the requirements 
noted below. Failure to timely comply will result in ABANDONMENT of this application. 
THIS THREE-MONTH PERIOD IS NOT EXTENDABLE. 

4. □ A SUBSTITUTE OATH OR DECLARATION must be submitted. Note the attached EXAMINER'S AMENDMENT or NOTICE OF 

INFORMAL PATENT APPLICATION (PTO-152) which gives reason(s) why the oath or declaration is deficient. 

5. □ CORRECTED DRAWINGS ( as "replacement sheets") must be submitted. 

(a) □ including changes required by the Notice of Draftsperson's Patent Drawing Review ( PTO-948) attached 

1) □ hereto or 2) □ to Paper No./Mail Date . 

(b) □ including changes required by the attached Examiner's Amendment / Comment or in the Office action of 

Paper No./Mail Date . 

Identifying indicia such as the application number (see 37 CFR 1.84(c)) should be written on the drawings in the front (not the back) of 
each sheet. Replacement sheet(s) should be labeled as such in the header according to 37 CFR 1.121(d). 
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DETAILED ACTION 

Continued Examination Under 37 CFR 1. 1 14 

A request for continued examination under 37 CFR 1.114, including the 
fee set forth in 37 CFR 1 .17(e), was filed in this application after final rejection. 
Since this application is eligible for continued examination under 37 CFR 1 . 1 1 4, 
and the fee set forth in 37 CFR 1.17(e) has been timely paid, the finality of the 
previous Office action has been withdrawn pursuant to 37 CFR 1.114. 
Applicant's submission filed on 1/15/2007 been entered. 

Examiner's Amendment 

An examiner's amendment to the record appears below. Should the 
changes and/or additions be unacceptable to applicant, an amendment may be 
filed as provided by 37 CFR 1.312. To ensure consideration of such an 
amendment, it MUST be submitted no later than the payment of the issue fee. 

Authorization for this examiner's amendment was given in a telephone 
interview with Konrad K. Chan (Reg. No. 57,857) on 2/22/2007. 

This application has been amended as follows: 
IN THE CLAIMS 

Cancel claim 8, 1 1 and 22 without prejudice. 
Replace claim 1,10 and 16 as follows. 
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Claim 1 : 

An apparatus to enable operation of a computer by authorized users when 
in a secure mode of operation, the apparatus comprising: 

a hub, the hub being configured to be portable and in 
communication with the computer, the hub further including, 

an installed system tray program configured to allow on 
demand customization of hub features using a graphical user interface^ 
the customization of hub features including an ability to allow a user to 
select secure hub ports and an ability to permit a user to enable remote 
locking of the hub : 

a card reader; 

a hub microprocessor, and 

an encryption engine configured to encrypt/decrypt data 
communications between the hub and a data storage device protected by 
the hub, the encryption engine including, 

a plurality of encryption/decryption channels, and 
a control logic that is configured to determine which 
encryption/decryption channel is available and direct encrypted 
data passing through the hub to available encryption/decryption 
channels; 

a card, the card being configured for insertion into the card reader, 
the card including a card microprocessor; and 
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a user authentication device, the user authentication device being configured to 
validate the user as an authorized user of the card wherein, if the user is 
validated as the authorized user, the card microprocessor being configured to 
pass a key to the hub microprocessor in response to the validation of the user as 
the authorized user of the card, thereby activating the encryption engine of the 
hub to-allow encryption/decryption of data communications. 

Claim 10 : 

A computer security system for a computer, comprising: 
a portable encryption control device, the encryption control device being in 
communication with the computer, the encryption control device including, 

a card reader, the card reader being in communication with an 
encryption control device microprocessor, 
a biometric identifier, and 

an encryption engine configured to encrypt/decrypt data 
communications between the portable encryption control device and a 
data storage device protected by [[the]] a hub, the encryption engine 
including, 

a plurality of encryption/decryption channels, and 
a control logic that is configured to determine which 
encryption/decryption channel is available and direct encrypted 
data passing through the hub to available encryption/decryption 
channels; 
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a system tray program configured to allow on demand customization of 
the portable encryption control device features using a graphical user interface A 
the customization including an ability to allow a user to select secure hub ports 
and an ability to permit a user to enable remote locking of the hub : and 

a card, the card being adapted to be read by the card reader to validate a 
user as an authorized owner of the card in conjunction with the biometric 
identifier, wherein upon validation of the user, the encryption engine activates to 
allow encryption/decryption of data communications. 

Claim 16 : 

An apparatus for providing a secure operating environment for a 
computer, the apparatus comprising: 

an encryption control device, the encryption control device (ECD) being in 
communication with the computer, the ECD further including, 

an installed system tray program configured to allow on demand 
customization of the ECD features using a graphical user interface , the 
customization of the ECD features including an ability to allow a user to 
select secure ports and an ability to permit a user to enable remote locking 
of the ECD . 

a card reader, 

an ECD microprocessor, 
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an encryption engine configured to encrypt/decrypt data 
communications between the ECD and a data storage medium protected 
by the ECD, the encryption engine including, 

a plurality of encryption/decryption channels, and 
a control logic that is configured to determine which 
encryption/decryption channel is available and direct encrypted 
data passing through the ECD to available encryption/decryption 
channels, and 
a biometric scanner; 
a smart card, the smart card being configured for insertion into the card 
reader, the smart card including a smart card microprocessor, wherein upon the 
insertion of the smart card into the card reader, a secure path is established 
between the smart card microprocessor and the ECD microprocessor after 
completion of authentication of a user and completion of a challenge/response 
protocol, thereby unlocking the encryption engine to allow encryption/decryption 
of encrypted data communications. 

Allowable Subject Matter 

1. Claims 1 - 7, 9, 10, 12 - 21 and 23 are allowed. 

2. The following is an examiner's statement of reasons for allowance: 
The above mentioned claims are allowable over prior arts because the 

CPA (Cited Prior Art) of record fails to teach or render obvious the claimed 
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limitations in combination with the specific added limitations, as recited in 
independent claims 1,10 and 16 (& associated dependent claims). 

The prior arts Tsuria, alone or in combination with Anand and Vu, fail to 
teach or suggest an apparatus to enable operation of a computer by authorized 
users when in a secure mode of operation, the apparatus comprises a hub, the 
hub being configured to be portable and in communication with the computer, the 
hub further including an installed system tray program configured to allow on 
demand customization of hub features using a graphical user interface, the 
customization of hub features including an ability to allow a user to select secure 
hub ports and an ability to permit a user to enable remote locking of the hub; and 
an encryption engine configured to encrypt/decrypt data communications 
between the hub and a data storage device protected by the hub, the encryption 
engine including a plurality of encryption/decryption channels, and a control logic 
that is configured to determine which encryption/decryption channel is available 
and direct encrypted data passing through the hub to available 
encryption/decryption channels. 

Any inquiry concerning this communication or earlier communications from 
the examiner should be directed to Longbit Chai whose telephone number is 
571-272-3788. The examiner can normally be reached on Monday-Friday 
8:00am-4:00pm. 
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If attempts to reach the examiner by telephone are unsuccessful, the 
examiner's supervisor, Ayaz R Sheikh can be reached on 571-272-3795. The 
fax phone number for the organization where this application or proceeding is 
assigned is 703-872-9306. 

Information regarding the status of an application may be obtained from 
the Patent Application Information Retrieval (PAIR) system. Status information 
for published applications may be obtained from either Private PAIR or Public 
PAIR. Status information for unpublished applications is available through 
Private PAIR only. For more information about the PAIR system, see http://pair- 
direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll- 
free). 
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